Manifest
$ rpki-client -vvf rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
File: yIYjh23RrY5iSiPdUossZMgKhSE.mft (raw, json)
Hash identifier: uO16vs0drYg7lr64GWDanaemEDQU1N0tEXfianEPOcI=
Subject key identifier: 68:97:E7:46:56:B2:3D:FC:BE:20:8F:BC:5A:3C:60:9A:D7:3E:D4:D8
Authority key identifier: C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
Certificate issuer: /CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Certificate serial: 01975490F4ADAF09C03AFDF1A0CB2525B331
Authority info access: rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject info access: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
Manifest number: 04A3
Signing time: Mon 09 Jun 2025 12:01:15 +0000
Manifest this update: Mon 09 Jun 2025 12:01:15 +0000
Manifest next update: Tue 10 Jun 2025 12:01:15 +0000
Files and hashes: 1: 6bGSQZyXICWLbBfHBORwDUVmEgs.roa (hash: 1jQZKU6KRpYxffMVHliAkA59/J/hUE4iGAwCvJDdSlw=)
2: yIYjh23RrY5iSiPdUossZMgKhSE.crl (hash: HVGC+nsYTAr7KwE2rwBpe9wwY1OQXKmg3yEM0jgjnpo=)
Validation: OK
Signature path: rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.crl
rsync://rpki.ripe.net/repository/DEFAULT/KpSo3VVK5wEHIJnHC2QHVV3d5mk.mft
rsync://rpki.ripe.net/repository/aca/KpSo3VVK5wEHIJnHC2QHVV3d5mk.cer
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.crl
rsync://rpki.ripe.net/repository/aca/7DNNDzoYvgAht7joQih2Qayxcxo.mft
rsync://rpki.ripe.net/repository/ec334d0f3a18be0021b7b8e842287641acb1731a.cer
rsync://rpki.ripe.net/repository/ripe-ncc-ta.crl
rsync://rpki.ripe.net/repository/ripe-ncc-ta.mft
rsync://rpki.ripe.net/ta/ripe-ncc-ta.cer
Signature path expires: Tue 10 Jun 2025 11:00:17 +0000
Certificate:
Data:
Version: 3 (0x2)
Serial Number:
01:97:54:90:f4:ad:af:09:c0:3a:fd:f1:a0:cb:25:25:b3:31
Signature Algorithm: sha256WithRSAEncryption
Issuer: CN=c88623876dd1ad8e624a23dd528b2c64c80a8521
Validity
Not Before: Jun 9 12:01:15 2025 GMT
Not After : Jun 10 12:01:15 2025 GMT
Subject: CN=6897e74656b23dfcbe208fbc5a3c609ad73ed4d8
Subject Public Key Info:
Public Key Algorithm: rsaEncryption
RSA Public-Key: (2048 bit)
Modulus:
00:cc:ff:86:0b:5e:92:c6:01:25:2e:67:f9:21:39:
fa:a0:80:26:8e:15:9f:8d:ee:fe:7c:85:df:33:46:
78:14:9f:d5:52:10:69:6c:d3:d1:ca:af:90:9d:9c:
1c:2a:a1:e4:ef:d2:d1:c4:0f:b5:89:9f:1d:86:6e:
d0:94:fc:6c:5d:fd:3a:d0:8a:a5:9a:00:dc:3f:da:
92:89:13:d0:b0:af:fb:3d:42:ab:4a:69:bc:c7:97:
58:7e:28:4a:20:85:d2:59:a4:92:7e:c2:a9:c6:db:
72:23:fd:2c:86:f9:96:8f:31:1a:74:30:b5:71:16:
ef:88:c7:a8:a3:9b:f5:92:46:96:94:74:45:7c:55:
b3:e0:fb:fd:cb:e5:d2:34:43:8d:5c:36:df:67:23:
56:ff:43:9d:1b:22:ea:e7:80:ff:df:60:49:df:13:
5d:4f:81:c7:1f:12:a8:99:a8:50:0d:0c:4f:62:ce:
d9:f0:90:82:f9:6f:5e:02:34:8e:d4:81:e9:bf:0b:
69:92:b2:4f:eb:27:4a:ab:c1:2c:5e:23:c2:1b:d3:
2c:be:6f:a8:fd:75:c2:b1:bc:fd:61:87:e5:e4:65:
c5:52:db:6e:8e:74:76:31:28:c6:c7:a9:90:f0:98:
e3:b6:33:a7:48:53:b9:14:c0:0c:45:a5:82:b1:03:
c1:29
Exponent: 65537 (0x10001)
X509v3 extensions:
X509v3 Subject Key Identifier:
68:97:E7:46:56:B2:3D:FC:BE:20:8F:BC:5A:3C:60:9A:D7:3E:D4:D8
X509v3 Authority Key Identifier:
keyid:C8:86:23:87:6D:D1:AD:8E:62:4A:23:DD:52:8B:2C:64:C8:0A:85:21
X509v3 Key Usage: critical
Digital Signature
Authority Information Access:
CA Issuers - URI:rsync://rpki.ripe.net/repository/DEFAULT/yIYjh23RrY5iSiPdUossZMgKhSE.cer
Subject Information Access:
Signed Object - URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.mft
X509v3 CRL Distribution Points:
Full Name:
URI:rsync://rpki.ripe.net/repository/DEFAULT/8f/1825d1-7c01-4915-a444-2eb51261ddba/1/yIYjh23RrY5iSiPdUossZMgKhSE.crl
X509v3 Certificate Policies: critical
Policy: ipAddr-asNumber
sbgp-ipAddrBlock: critical
IPv4: inherit
IPv6: inherit
sbgp-autonomousSysNum: critical
Autonomous System Numbers:
inherit
Signature Algorithm: sha256WithRSAEncryption
11:43:55:2b:82:35:85:16:e8:40:df:1b:34:73:58:52:72:08:
12:d2:67:28:f8:8e:5f:a1:f3:9a:cb:6c:2e:36:6e:f9:19:8d:
1e:b5:0f:0b:38:a1:b1:18:78:29:89:45:cb:b5:28:d4:e0:71:
ce:dc:03:e7:24:60:08:d2:6d:ad:60:2d:1e:3d:16:b7:d4:d1:
b8:5c:72:ef:c3:e6:92:68:77:13:90:74:3f:a2:a1:ba:06:f0:
b1:f9:05:3d:84:68:d6:db:fa:7f:64:80:9c:52:72:ce:db:52:
63:3f:93:97:1c:8a:81:21:14:0f:3f:ff:ce:ac:d7:64:85:fc:
ab:e3:81:03:15:68:77:83:9e:16:ca:b3:9d:46:71:ce:f1:23:
7a:cf:5d:45:0b:6c:93:6a:59:15:30:55:3a:e6:df:ec:f9:93:
3d:4c:9a:94:52:14:83:0c:1e:03:8a:2a:4e:36:58:f9:fa:3d:
a7:c1:9f:ee:62:9b:ad:b2:8d:8e:5b:c3:f8:61:78:b5:e6:d2:
a0:c6:78:a6:7d:bb:8d:f4:42:9b:7a:f6:87:03:41:99:2d:00:
4d:d6:ca:12:6c:01:9b:dd:8a:47:6a:ce:c9:4b:f9:3f:4d:6c:
cf:bc:6b:dc:b9:c5:3a:df:2e:d0:e6:83:97:f8:01:2b:41:c9:
65:31:af:0f
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Mon Jun 9 19:09:12 2025 by rpki-client